Information Security Lean Six

Aura O. Adams, MBA

Somerset, NJ I **********@*****.*** I 732-***-**** Linkedin.com/in/auraorogodonoso Executive Governance, Risk, Compliance, Quality & Audit Leader with extensive management & auditing experience across manufacturing, light production, financial services and medical device parts industries. Strong leadership in Quality (QMS) change management, continuous improvement, information security & risk management with a record creating effective and sustainable frameworks to accommodate organizational needs in the face of tighter industry controls and regulatory requirements.

Certified Global Lead Auditor for ISO 9001:2015; ISO 13485:2016; ISO 27001:2013, ISO 31000; ISO 22301 Portfolio includes:

Integrated Quality Management System, Information Security & Enterprise Risk Management using ISO 9001:2015; ISO 27001 & ISO 31000 standards: Achieved ISO certification in 8 months instead of standard 24 months, improving customer complaints & quality improvement by 70%, boosting NPS from 10% to 37% and generating $2M in savings from process efficiency and error reduction.

Developed & implemented an Integrated Quality, Risk & Information Security Audit Program including training & coaching of internal auditors to ensure process documentation, implementation of management business control for identified risks including financial, strategic, technology, regulatory, operational risk and other business risks are contained. Developed Business Resilience Program (BCP/DR) & Pandemic Planning using ISO 22301 Business Continuity Management Systems. The program was utilized to achieve 99.99% Customer Service Level Agreements despite weather related calamities like Hurricane Sandy and epidemic/pandemic related events.

Developed transformation roadmaps & led conversion initiatives using Data Analytics & Lean Six Sigma concepts that helped improve operational capabilities of the business by 70% increased productivity, automating Global QMS & achieving Six Sigma quality level for one of the facilities.

Implemented Information Security Management System using ISO 27001 Standards & AICPA SOC 2 guidelines. Achieved 50% reduction in enterprise and information security risk through effective gap analysis, implementation of risk assessment and controls. Delivered clean third-party Certification & Audits (Zero Exception report for ISO & SOC 2 audits).

Professional Experience

COMPUTERSHARE COMMUNICATION SERVICES, New Jersey based 2006–2020 Industry: Communication solutions for financial services industries (Corporate Actions, Proxy, Banking, Credit Union) Vice President, Governance, Risk, Compliance, Quality & Audit 2010–2020 National Head, Quality & Risk 2006–2009

Develop, deploy, and manage an integrated Quality, Risk & Compliance Program in accordance with ISO Standards

(27001/31000/ISO 9001) structure, global framework, policies & processes. Consult on process design and controls for potential operational, infosec and other business risks, applying risk management skills and analysis tools (RCSA, ROA, FMEA, Bow tie, etc.), using ERP/ SAP & visualization tools. Implemented controls with coordination & collaboration with other risk partners during Fraud Assessment, Data Privacy (GDPR, CCPA, HIPAA), Infosec, and other compliance requirements.

• Design, develop and implement a sustainable Integrated Management System based on ISO 9001:2015/ISO 27001:2016 standards. The QMS business model include identification of process & controls for: Knowledge Management Program (Document Control, Internal Training & Employee on Boarding Program); Internal Audit, Corrective & Preventive Action (CAPA); Management Review Process, Continuous Improvement Program, Supplier Management & Risk Management. The facility obtained ISO Certification in 8 months (average Certification process is 24 months).

• Develop comprehensive Audit Program with established procedures & policies for audit planning, investigations, content, documentation, reporting, audit engagements, training of auditors, audit techniques & due diligence, plan execution including testing as needed in compliance with legal, client, regulatory compliance and corporate initiatives. Monitor and cascade emerging risks and changes in product line, function, or company policies and procedures, accounting/auditing standards and industry practices/regulations, to suggest changes to audit plans and procedures.

• Conduct extensive data assessment for customer complaints, employee & client survey results to identify strengths, weaknesses, root cause, effective corrective action and opportunities for improvement using Lean Six Sigma and Quality Tools. Develop easy to understand report and presentations & provide reports to stakeholders.

• Develop Employee Rewards Kaizen Program; Kaizen Event activities and lead Lean Six Sigma Blackbelt projects that resulted in approx at least 40% measurable results favorable to company.

• Provide leadership in working with corporate Business Continuity and Disaster Recovery Program to develop BCP/DR strategies and properly document, implement and test for all facilities.

• Provide guidance, coach in dealing with increasing number of audits, risk assessments, compliance checks and external assessment processes for internal/external controls, ISO, SOC 2, ATC 205, Privacy, Risk, Information System & IT, etc. Design & develop control objectives for PwC annual audits. Present findings with risk owners; recommend action plans, monitor and report.

Aura O. Adams, Page 2

COMPUTERSHARE COMMUNICATION SERVICES (cont.)

• Design, develop & implement a Knowledge Management framework that included Programs for Document Control, Internal Training, and Employee on Boarding Program.

• Develop Balanced Scorecard business governance process to identify and develop measures for success collaborating with Leadership Team. As a member of the Leadership Team, participates in meetings to review major business initiatives and pro-actively advises and assists the business on change initiatives.

• Facilitate a gap analysis with Global Quality leaders to develop a consistent approach incorporating best business practices in the CAPA workflow. Developed Global KPI that is implemented across each region.

• Recruit, training, coaching, direct & mentor a high functioning Governance, Risk, Compliance & Quality team. Effectively manage cross-functional departmental staff, including co-sourced audit resources. Effectively perform all HR related company processes including performance management, team mentoring, development planning and effectively considering succession planning during recruiting phase. Committed to continuous self-development of teams while managing a budget.

• Interfaced with vendors, customers, quality representatives and personnel to resolve quality problems.

• Design, develop and implement Internal & External Client Surveys in compliance with ISO 9001 requirements. Collaborated with Global team to provide assessment to US Leadership Team improving the client experience & customer focus. NPS scores demonstrated continual improvement from 13% to 82% in 7 yrs. HORIBA JOBIN YVON, Edison, NJ 2002–2004

Industry: Medical Devices Parts

Quality Manager 2005–2006

Quality Engineer 2002–2004

Developed, implemented & maintain quality management systems and documentation database to ensure compliance with customer quality standards and regulations in an ISO 9001:2000 environment. Designed training and onboarding programs, ensuring understanding of new processes; developed competency courses, leading to improved employee retention.

• Performed internal audits to comply with ISO 9001:2000; ISO 13485 standards; FDA and other regulatory requirements. Led bi-annual management meeting, that brought 30% improvement in quality and consistency.

• Collaborated with Supply Chain to develop and implement a qualification process for medical devices parts and ensure product quality & delivery as required. Mapped process from receipt of raw materials to delivery.

• Conducted data analysis using data analytics, statistics & lean six sigma tools to identify trends, root causes, process & quality improvements. Used analytical, statistical tools, excel, word and other Microsoft applications.

• Investigated customer returns and conducted failure analyses, communicating directly with customers to ensure customer requirements & specifications are met, client retained and satisfied.

• Led onsite quality & product inspections to ensure product quality while improving relationships with vendors. MORNING POWER PLASTIC MANUFACTURING, Caloocan City, Philippines Industry: Auto Parts

Production Manager Quality Management System Manager Managed operations and facilitated the streamlining of a 4,000 square meter factory and 150 employees, improving workstream & processes by at least 50% and improving production time by 20%. Facilitated several improvement using Project/Program Management tools in achieving sustainable improvements. Education, Certifications & Professional Engagement ASIAN INSTITUTE OF MANAGEMENT, Makati City, Philippines Master of Business Administration (MBA): General Management MAPÚA UNIVERSITY-MANILA, Manila, Philippines

B.S. Management & Industrial Engineering

Certifications:

+ Blackbelt - Lean Six Sigma Certification (Six Sigma Academy)

+ Certification as Global Lead Auditors for ISO 9001:2015; ISO 13485:2016; ISO 27001:2013, ISO 31000; ISO 22301

+ SOC 1, 2, 3 (Service Organization Control) Auditor (AICPA, 2017)

+ Certification in Risk & Information Systems Management, CISA (ISACA, 2017)

+ Certified Quality Engineer (ASQ)

+ ITEA Judge–International Team Excellence Awards–ASQ sponsored world competition for Process improvement

+ World Conference Speaker – International Conference on Quality Standards – ASQ sponsored o Annual global conference; 2016

Associations & Volunteer Organizations

Associations: American Society of Quality Professionals (ASQ) Institute of Industrial & Systems Engineers (IISE) Volunteer Organizations: Feed Hungry Minds, 2015–Present World Vision International: Child Sponsorship (Costa Rica & Philippines)

Contact this candidate